UAA
E1023373
Cloud Foundry component
OAuth2 authorization server
authorization server
identity management service
UAA (User Account and Authentication) is Cloud Foundry’s central identity management and authorization service, providing OAuth2-based authentication and single sign-on for applications and services.
Statements (49)
| Predicate | Object |
|---|---|
| instanceOf |
Cloud Foundry component
ⓘ
OAuth2 authorization server ⓘ authorization server ⓘ identity management service ⓘ |
| authenticates |
client applications
ⓘ
users ⓘ |
| fullName | User Account and Authentication ⓘ |
| hasComponent |
client management API
ⓘ
login server UI ⓘ token service ⓘ user store ⓘ |
| implements |
OAuth2 authorization framework
NERFINISHED
ⓘ
OpenID Connect identity layer NERFINISHED ⓘ |
| integratesWith |
Cloud Foundry Cloud Controller
NERFINISHED
ⓘ
Cloud Foundry applications ⓘ external LDAP directories ⓘ external OAuth2 identity providers ⓘ external SAML identity providers ⓘ |
| issues |
ID tokens
ⓘ
access tokens ⓘ refresh tokens ⓘ |
| manages |
OAuth2 authorities
ⓘ
OAuth2 scopes ⓘ client registrations ⓘ user accounts ⓘ |
| provides |
authentication
ⓘ
authorization ⓘ identity management ⓘ single sign-on ⓘ |
| roleInCloudFoundry |
authorization service
ⓘ
central identity management service ⓘ |
| supportsFeature |
authorization code grant
ⓘ
client credentials grant ⓘ external identity provider integration ⓘ group-based authorization ⓘ implicit grant ⓘ multi-tenant user stores ⓘ password grant ⓘ single sign-on for applications ⓘ single sign-on for services ⓘ token introspection ⓘ token revocation ⓘ |
| supportsProtocol |
OAuth 2.0
NERFINISHED
ⓘ
OpenID Connect NERFINISHED ⓘ |
| usedFor |
centralized authentication in Cloud Foundry
ⓘ
centralized authorization in Cloud Foundry ⓘ service-to-service authentication ⓘ user account management in Cloud Foundry ⓘ |
| usedIn | Cloud Foundry NERFINISHED ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.